Canadian Electricity Provider London Hydro Discloses Data Breach

Hackers stole customers’ names, addresses, email addresses, phone numbers, and account information. The post Canadian Electricity Provider London Hydro Discloses Data Breach appeared first on SecurityWeek .

The article reports that London Hydro suffered a data breach in which attackers accessed customer contact and account information, including names, addresses, emails, phone numbers, service addresses, pricing/plan details, contract dates, and meter information, but not banking data, government IDs, or dates of birth.[1][2] London Hydro attributes the incident to a system vulnerability exploited after suspicious activity on a customer account, and states the vulnerability was patched the same day while investigations with law enforcement continue.[1][3] From a CyberSE.AI perspective, this incident illustrates classic data leakage risk arising from vulnerable customer-facing systems and insufficient segregation of customer records, which could analogously expose AI-driven customer portals or agent backends if similar flaws exist. Organizations integrating AI into customer service or billing flows should perform an AI Security Readiness Assessment to map data flows, harden access controls around AI-related APIs and services, and ensure that system vulnerabilities cannot be used to traverse from one user or account context into broader datasets.